ModSecurity is a potent web app layer firewall for Apache web servers. It monitors the whole HTTP traffic to a site without affecting its operation and when it identifies an intrusion attempt, it blocks it. The firewall additionally keeps a more detailed log for the site visitors than any server does, so you'll be able to monitor what is going on with your websites much better than if you rely merely on conventional logs. ModSecurity employs security rules based on which it prevents attacks. For instance, it recognizes if someone is trying to log in to the admin area of a specific script a number of times or if a request is sent to execute a file with a specific command. In such circumstances these attempts set off the corresponding rules and the firewall software hinders the attempts right away, and then records detailed information about them inside its logs. ModSecurity is among the best software firewalls available and it could easily protect your web applications against a huge number of threats and vulnerabilities, especially in case you don’t update them or their plugins frequently.

ModSecurity in Website Hosting

ModSecurity is available with each website hosting package which we offer and it is activated by default for every domain or subdomain that you add via your Hepsia CP. In the event that it interferes with any of your programs or you'd like to disable it for some reason, you'll be able to accomplish that through the ModSecurity area of Hepsia with simply a click. You can also enable a passive mode, so the firewall will detect potential attacks and maintain a log, but will not take any action. You can see extensive logs in the very same section, including the IP address where the attack originated from, what exactly the attacker aimed to do and at what time, what ModSecurity did, and so on. For max protection of our clients we use a group of commercial firewall rules mixed with custom ones which are provided by our system administrators.

ModSecurity in Semi-dedicated Servers

ModSecurity is a part of our semi-dedicated server plans and if you opt to host your websites with us, there will not be anything special you'll have to do since the firewall is activated by default for all domains and subdomains which you include through your hosting CP. If required, you'll be able to disable ModSecurity for a particular Internet site or enable the so-called detection mode in which case the firewall will still function and record data, but will not do anything to stop possible attacks against your websites. Comprehensive logs will be readily available inside your Control Panel and you'll be able to see what sort of attacks took place, what security rules were triggered and how the firewall dealt with the threats, what IP addresses the attacks came from, and so forth. We employ two sorts of rules on our servers - commercial ones from a firm that operates in the field of web security, and custom made ones which our admins occasionally include to respond to newly found threats in a timely manner.

ModSecurity in VPS Servers

Security is extremely important to us, so we install ModSecurity on all VPS servers that are set up with the Hepsia CP by default. The firewall can be managed through a dedicated section inside Hepsia and is activated automatically when you include a new domain or generate a subdomain, so you will not have to do anything personally. You shall also be able to deactivate it or activate the so-called detection mode, so it'll keep a log of potential attacks which you can later analyze, but will not stop them. The logs in both passive and active modes offer information about the form of the attack and how it was stopped, what IP address it came from and other important information which might help you to tighten the security of your Internet sites by updating them or blocking IPs, for example. Beyond the commercial rules which we get for ModSecurity from a third-party security enterprise, we also employ our own rules as every now and then we discover specific attacks which are not yet present in the commercial pack. That way, we can easily improve the security of your Virtual private server right away as opposed to awaiting an official update.

ModSecurity in Dedicated Servers

If you choose to host your sites on a dedicated server with the Hepsia CP, your web applications will be secured immediately since ModSecurity is provided with all Hepsia-based solutions. You shall be able to manage the firewall with ease and if needed, you'll be able to turn it off or activate its passive mode when it will only keep a log of what's going on without taking any action to prevent possible attacks. The logs that you will find in the same section of the Control Panel are extremely detailed and feature data about the attacker IP address, what site and file were attacked and in what way, what rule the firewall employed to prevent the intrusion, etc. This information shall allow you to take measures and enhance the protection of your Internet sites even more. To be on the safe side, we employ not only commercial rules, but also custom-made ones which our administrators add every time they identify attacks which have not yet been included within the commercial pack.